Slashdot Mirror


User: khasim

khasim's activity in the archive.

Stories
0
Comments
5,818
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 5,818

  1. Why not offer to swap them ahead of time? on Storm Worm Rising · · Score: 2, Interesting

    I wonder how grandma and grandpa will feel when get a letter in the mail to discover that there internet they use to only check mails from the kids/grandkids has been hijacked by a worm that they never heard about and now have to pay fines to cover damages. I mean other then the whole aww factor this plan will work.

    Why wait?

    Why not take a few pro-active measures? Such as emailing all your clients with the new rules and offering to assist them in evaluating their systems ... automatically?

    hell i personally consider myself a higher end user and i don't even know what the most popular/newest worms out there are.

    Why would you need to know about the newest worms? The focus should be on the security of the system.

    A default installation of Ubuntu does not have any open ports. It is immune to all worms except anything that might attack the TCP/IP stack itself.

    It's still susceptible to trojans, but even those can be mitigated.

    And it is easy to check most Linux distributions with a Live CD. So the idea is to limit the possible avenues of attack and have a system in place so that successful attacks can be recognized and removed.

  2. Choose "cry". on Microsoft Says "War on Terror" is Overblown · · Score: 5, Insightful

    I don't know whether to laugh or cry why we even take them so seriously.

    Consider what we COULD be doing with the money spent on this.

    The Cold War ended. The world was as close to Peace as it has ever been. We could have been investing in so many things to help the human race as a whole.

    Instead we're spending trillions of dollars "fighting" a few thousand nutcases who can't do any more damage to the world than we do to ourselves, every year, in traffic accidents.
  3. Catalyst for change? on Storm Worm Rising · · Score: 3, Interesting

    Let's look at DDoS attacks.

    #1. Spoofed IP addresses - not that common anymore. It used to be that you'd tie up a machine by having it send replies to machines that did not initiate the connection. There is a simple solution to this. Anyone assigned a block of IP addresses has to make sure that all outbound traffic references IP addresses on that block.

    #2. Thousands of machines eating up your bandwidth - the most common type now. This is where the zombie army each makes continued requests of your machine. For webservers, they can request a page over and over and over until they use up all your bandwidth and legitimate visitors cannot get through. This is more difficult to fix. It can partially be handled by blocking the range of addresses that host the zombies. Such as Comcast and Verizon and so forth. There are more complicated attacks. Such has sending half a request.

    There's not much that can be done with #2 until a law gets passed saying that the person paying for the Internet connection is responsible for $X of clean-up charges. Then people will have a financial incentive to look at more secure systems.

  4. "The silent majority" is uninformed. on Storm Worm Rising · · Score: 4, Insightful

    No. "The silent majority" believe that this is the way computers just "work".

    They've been shown that in countless movies and TV shows and by "experts" on the news.

    They're the ones you see claiming that Linux and Mac's will have the "same problems" as their market share increases.

    With all the past outbreaks on Windows machines, anyone who wanted to migrate has already started their migration. This won't change anything for anyone else.

  5. I'm thinking China. on Sun Moves Into Commodity Silicon · · Score: 4, Interesting

    Depending upon how the patents (are there patents?) are handled. China has been researching it's own chip design in the past. This could be a huge push for Sun if China abandoned trying to re-invent the wheel and just started cranking out UltraSPARC's.

    Not to mention Windows not running on such, but Linux will.

    And China would have a home source of chips for their IT industry and would not have to import Intel or AMD.

  6. Charge vegetarians less? on Charging the Unhealthy More For Insurance · · Score: 0

    Charge vegetarians less?

    Charging someone MORE doesn't make sense unless you charge other people LESS. Why should I be penalized for following a healthier lifestyle by paying the same premiums as people who jog less and eat more red meat?

    Now, if they'd put it in a chart form, I'd support that. So you could base your lifestyle on the premiums you'd be paying.

    Each ounce of red meat, +$0.25
    Each ounce of fish, -$0.10
    Each mile you jog, -$0.50
    Each 12 ounce soda, +$0.25
    etc.

  7. No. It comes from their servers. on The New Yorker On Spam · · Score: 3, Interesting

    You mean appears to come from HotMail and GMail.

    Nope. They can't fake the IP address if you don't have pipelining turned on. It's coming from their IP's.

    Of course, very little stops spammers from also opening a ton of "legitimate" free accounts and spamming using those, but they can (sometimes) get tracked and shut down...

    That's the problem. You cannot "trust" Hotmail or GMail because they ARE used by spammers.

    And there is no technological reason why they could not address that issue. They know that spammers will open accounts with them. Yet they take no steps to mitigate that. Even limiting the outbound emails from each account would help. And having an automated process for reporting and blocking spam from them would pretty much solve the rest of the problem with them.
  8. "Web of trust" won't work. on The New Yorker On Spam · · Score: 3, Insightful
    Check out TFA. They even mention Hotmail.

    Hotmail is one of the world's largest providers of e-mail service, with two hundred and eighty-five million registered accounts in more than two hundred countries. "We filter them all, and that takes huge amounts of computer processing power and Internet bandwidth, and it requires us to work constantly to keep the numbers from getting worse," Scarrow said. "We do this to minimize the impact on our customers, but it's a hell of a job."

    Yet about half the spam that gets through my system comes from HotMail and GMail.

    And let's not forget the cute ads that Microsoft appends to outgoing Hotmail messages. So, someone sends spam through Hotmail, which ends up with the ad attached ... and it gets reported as spam ... so when a legitimate message comes through from Hotmail it also has the ad and so it gets flagged as spam by SpamAssassin.

    That's great. The spam gets through and the legitimate messages are blocked. Maybe Microsoft could have put a bit more thought into their process? No? Getting the ads out is too important?

    Here's a thought. How about Microsoft and Google throttle the outbound connections on their servers? One message every 5 seconds? And take an account off-line AND ALL ITS PENDING MESSAGES if they get a complaint? Google has smart people. I'm sure they could work out an automatic arrangement with the larger anti-spam sites.

    The only "web of trust" you can really trust is your own white list.

    I'd rather focus on the opposite. Identifying ranges that are 99.9%+ likely to be spammers. Like most of the home accounts on Comcast and Verizon and such.
  9. It's worse than you think. on The New Yorker On Spam · · Score: 1

    What made it worse, of course, is that she didn't just send the message to me, she CC'ed it to everyone she could get an e-mail address for. So that means that several dozen people now have my e-mail address. Knowing her friends, at least several of them CC'ed it to everyone they could get e-mail addresses for, which means that hundreds of people now have my e-mail address. After just a very few iterations of this, I might as well get on national television and broadcast my e-mail during the Superbowl. No doubt I've gotten at least a few thousand spams from people who stupidly CC their whole address list on stuff.

    Now, the first time ANY SINGLE ONE of those people get infected, anything that appears to be an email address will be uploaded to the spammer's computer.

    From the spammer's perspective, that is the whole purpose of those "scams". To get more LEGITIMATE email addresses on more people's machines so that the spammer only needs to infect ONE machine to get ALL the addresses.
  10. Mod parent up! on The New Yorker On Spam · · Score: 1

    This comes up every single time there is a discussion about spam.

    It is simply impossible to have a system that will identify EVERYONE in the world ... that will not also allow the spammers to grab fake addresses whenever they want to.

  11. Here's a scenario for you. on FBI Raids Home of Suspected NSA Leaker · · Score: 5, Funny

    Jack Bauer is in the super secret NSA communication intercept room along with various other people.

    Unnamed extra #1: "Sir, you need to see this. It's Osama's cell phone! And the call is coming across OUR circuit!"

    JB: "Dammit! He's up to something. I want that call intercepted and get me a translator! I want to know what he's saying and to whom he is saying it!"

    Unnamed extra #2: "But sir, if we don't get a warrant within the next 72 hours, that will be ILLEGAL!"

    JB: "No problem. I only need 24. Just tap that call!"

    JB walks over to a different phone and picks it up.

    JB: "Get me the FISA court! This is an emergency!"

    Begin one-way telephone communication bit ...

    JB: "I have an emergency and I need a warrant! No, I'm not going to wait! Yes, I will be right over! That's right, I want your Liberal judge ass sitting on that bench when I arrive!"

    JB slams down the phone and walks over to unnamed extra #1.

    JB: "Are you getting it all?"

    UE#1: "Yes sir. Will there be a problem with the warrant?"

    JB: "Not as long as I still have 3 days to get it there won't be."

    JB then grabs some paper work and runs to his car. He then races across D.C. avoiding enemy mines, fighter aircraft and snipers. He screeches to a halt outside of the Court and runs up the steps. He slams open the door to the judge's chambers and throws the paperwork at him.

    JB: "Listen, you have less than 71 hours and 26 minutes to sign that warrant or I'll have your terrorist loving Liberal ass!"

    Unnamed Judge: "Always nice to see you, Jack. Here's your warrant. Let's see, that leaves you 71 hours and 24 minutes to get back to your secret spy base. Can you manage that this time without speeding or running over anything? Hmmmmm?"

    JB: "You Liberal judges make me sick! My ass is on the line every time I have to drive over here! Good bye!"

    JB then runs down to his car, notices the parking ticket on the windshield and throws it away. He then gets in and races back to work. Avoiding various mines, attacking aircraft and snipers.

    Yes, the "ACLU types" are really trying to "slow down the wiretaps". 72 hours is just not enough time to get a warrant. What if JB had to take some time off to go look at swatches with his wife? What if he wanted to maybe take a couple of days in Reno when a terrorist call was coming in? Maybe there was a concert he wanted to go see! It's just too much to ask for them to process the paperwork in only THREE DAYS!

  12. Let's make it easy. Here's the scenario. on House Approves Warrantless Wiretapping Extension · · Score: 2, Funny

    Jack Bauer is in the super secret NSA communication intercept room along with various other people.

    Unnamed extra #1: "Sir, you need to see this. It's Osama's cell phone! And the call is coming across OUR circuit!"

    JB: "Dammit! He's up to something. I want that call intercepted and get me a translator! I want to know what he's saying and to whom he is saying it!"

    Unnamed extra #2: "But sir, if we don't get a warrant within the next 72 hours, that will be ILLEGAL!"

    JB: "No problem. I only need 24. Just tap that call!"

    JB walks over to a different phone and picks it up.

    JB: "Get me the FISA court! This is an emergency!"

    Begin one-way telephone communication bit ...

    JB: "I have an emergency and I need a warrant! No, I'm not going to wait! Yes, I will be right over! That's right, I want your Liberal judge ass sitting on that bench when I arrive!"

    JB slams down the phone and walks over to unnamed extra #1.

    JB: "Are you getting it all?"

    UE#1: "Yes sir. Will there be a problem with the warrant?"

    JB: "Not as long as I still have 3 days to get it there won't be."

    JB then grabs some paper work and runs to his car. He then races across D.C. avoiding enemy mines, fighter aircraft and snipers. He screeches to a halt outside of the Court and runs up the steps. He slams open the door to the judge's chambers and throws the paperwork at him.

    JB: "Listen, you have less than 71 hours and 26 minutes to sign that warrant or I'll have your terrorist loving Liberal ass!"

    Unnamed Judge: "Always nice to see you, Jack. Here's your warrant. Let's see, that leaves you 71 hours and 24 minutes to get back to your secret spy base. Can you manage that this time without speeding or running over anything? Hmmmmm?"

    JB: "You Liberal judges make me sick! My ass is on the line every time I have to drive over here! Good bye!"

    JB then runs down to his car, notices the parking ticket on the windshield and throws it away. He then gets in and races back to work. Avoiding various mines, attacking aircraft and snipers.

    Yes, I can certainly see how a 72 hour limit on getting a warrant AFTER THE FACT would be a "crippling" restriction on our intelligence gathering.

    What if the judge HAD BEEN AT LUNCH for an hour? What if Jack Bauer had decided to WAIT 3 DAYS before calling the judge? What if Jack Bauer's car had gotten a FLAT TIRE?!? Does he have a can of Fix-A-Flat?!?

  13. Up to 72 hours later. on House Approves Warrantless Wiretapping Extension · · Score: 1, Informative

    Uh, it is, but when that happens, it requires a warrant.

    Yes, it does. And that warrant may be applied for up to 72 hours AFTER the event.

    You continue to ignore that. Because it invalidates your entire position.

    The traffic HAS to cross the US. This isn't about anything we pick up from Echelon or whatever. So it's already a sub-set of everything out there.

    The traffic HAS to be from or to a suspected terrorist. So it's even a smaller sub-set of the sub-set.

    And a warrant is allowed up to 72 hours AFTER the event.

    Requiring the FISA process, even retroactively, on all foreign signals intelligence collection completely cripples that capability.

    You keep claiming that. Yet you have been unable throughout all you posts to explain how it is "crippled" (your word).

    They can still tap it. The tap can still happen. There is nothing saying they cannot tap it.

    There is no "crippled" as you like to claim.

    Fascism begins when the efficiency of the Government becomes more important than the Rights of the People.
  14. How is that a problem? on House Approves Warrantless Wiretapping Extension · · Score: 1

    This system failed because more and more foreign communication is traveling through equipment physically within the United States.

    How is that a problem? It would seem to me that it would be easier to tap that way.

    Under the current law, monitoring of such communication, which never required (and shouldn't require) a warrant, suddenly requires a warrant, because of the incidental fact that some of the traffic travels through the US.

    And ... ?
    FISA allows up to 72 hours AFTER the event to get a warrant. Even in your scenario, there doesn't seem to be a problem.

    See this article for a brief overview.

    And that article says:

    But after 9/11, the administration asserted that warrants weren't needed to surveil communications involving suspected terrorists even inside the U.S.

    Again, FISA allows up to 72 hours AFTER the even to get a warrant.

    I'm going to have to trust our Founding Fathers on this one.

    Fascism begins when the efficiency of the Government becomes more important than the Rights of the People.
  15. Look at the facts. on House Approves Warrantless Wiretapping Extension · · Score: 1

    The fallacy is that you apparently, by your statements, are asserting foreign SIGINT doesn't work, because if we have that capability, we should have been able to "win" the war on drugs.

    It isn't that it does not work. It is that it is not sufficient for even the "War on Drugs".

    You have said that twice now. It is fallacious to draw that conclusion. That's the fallacy. No lies; sorry to disappoint.

    Yeah, keep repeating yourself. The FACT is that we have been tapping their lines and they are still able to move TONS of material and HUNDREDS of people through our country.

    Now, you can claim that that fact is a fallacy all you want, but it is still a fact.

    We tap their communications and they still move TONS of material through our country.
  16. Explain the fallacy. on House Approves Warrantless Wiretapping Extension · · Score: 1

    (I'll just ignore the huge "war on drugs not 'won', therefore all signals intelligence must be a failure" logical fallacy, here...wow...)

    Explain where the "fallacy" is.

    If you have to lie, then you've lost already. I never said that "all signals intelligence must be a failure". Despite you putting quotation marks around it.

    I said that we could not even stop the drug trade. After YEARS of being able to tap communications outside the US.

    And the drug trade move a LOT more material and people than terrorism does.

    1.) Don't know your history, and

    You can make all the claims you want. But I have examples. And you've been unable to refute my example so far. The drug trade move literally TONS of material into the US every single year. And hundreds of people. And we are still unable to stop it even with tapping communications outside the US.
  17. Something ain't right there ... on House Approves Warrantless Wiretapping Extension · · Score: 2, Insightful

    This is fair-game surveillance of foreign communication which is perfectly legitimate on the global stage and has gone on for decades. Pretending the United States shouldn't be doing it is sticking your head in the sand to unprecedented depths.

    If it has "gone on for decades", then what is the problem NOW?

    Why and How has the existing system suddenly failed?
  18. Change the focus. on House Approves Warrantless Wiretapping Extension · · Score: 1

    So Cheney/Bush can spy on us. On you. Feel safer? Feel American? Or do you feel more like an East German under their Stasi police state?

    Ask them if they'll be happy when President Hillary Clinton has these same executive powers.

    Without judicial oversight.

    With years of experience knowing what NOT to put on paper or telephone recordings.

    With a Congress full of Democrats to support her.

    It's not whether your team gets super-secret legal authority to do whatever. It's whether the other team gets super-secret legal authority to do whatever. You might trust your own people. But this means you'll have to trust the other team as well.
  19. Nope. Just anything in the US. on House Approves Warrantless Wiretapping Extension · · Score: 1

    So, by that logic, all foreign signals intelligence should require a warrant?

    Nope. As long as the tap is placed in Afghanistan or such, then it is fine.

    If you're placing a tap in the US, then you need a warrant.

    If your goal is to cripple US foreign intelligence capability and put us at a marked and distinct disadvantage in countless respects to the intelligence services of the rest of the modern world, then we should put that suggestion on the top of our list.

    So what you're saying is that anyone with any clue would NOT use these routes because everyone else in the "modern world" is already tapping them.

    Here, let me put it in context for you. We've been "fighting" the "war on drugs" for HOW MANY YEARS now? And we've still not won. Despite the drugs coming in from other countries. Where we could tap their communications. So it would seem that the methods you appear to be advocating have failed.

    Fascism begins when the efficiency of the Government becomes more important than the Rights of the People.
  20. And quickly! on Indiana University Dumps Google for ChaCha · · Score: 4, Funny

    IU's guides could be asked to locate a building on campus, find a book in one of the university's libraries or solve a question about Windows Vista.

    Hmmmm, free tech support! And we all know how well people doing tech support are treated.

    Students, faculty and the public could ask the IU guides questions, said Brad Wheeler, IU's vice president for information technology. But he isn't worried about them getting overwhelmed. "If it ever became a huge problem, we can gate it," he said.

    So, they stick a bunch of people with tech support responsibilities ... and when that bogs down they restrict the number of calls to them.

    And yes, that is what will happen.

    The only way this will survive is when the "support" people start telling their "customers" to purchase 3rd party software and such from companies that have purchased "ad time" on those "support" people.

    "Hello, I'm running Windows Vista and it won't boot up."
    "Have you tried the extreme refreshment of Mountain Dew? Many people who use Windows Vista prefer Mountain Dew."
    "Will that help me fix Vista?"
    "It might. It couldn't hurt. May I also recommend some Dominoes Pizza?"
    "Thanks, I'm not hungry."
    "Dominoes Pizza is having a special offer today on pepperoni pizzas."
    "Okay, I'll order some pizza. How about my Vista problem?"
    "Symantec sells a wide range of software products designed to facilitate and enrich your Vista experience."
    click
  21. rsync it, with compression. on Case of the Great Hot-Site Swap · · Score: 3, Insightful

    That way you only take a real hit during the first copy.

    After that, you should be able to copy just the changes and the new files. It is amazing.

  22. Exactly. on Lawyer Thinks Microsoft Can Evade GPL 3 · · Score: 5, Informative

    IANAL ... but the GPLv3 is a LICENSE not a CONTRACT.

    If Microsoft does not follow the LICENSE then Microsoft cannot LEGALLY re-distribute the software. Doing so would put Microsoft in violation of basic copyright laws.

    Which is why Microsoft quickly distanced itself from the GPLv3.

  23. Sure it does. on Diebold Voting Machines Audited by California · · Score: 4, Informative

    The votes on 10 ballots are totaled and this total is recorded on a marker sheet placed on top. Then the bundle is tied up. (10 ballots)

    10 of those bundles are totaled on a different marker sheet and bundled together. (100 ballots)

    10 of those bundles are totaled on a different marker sheet and bundled together. (1,000 ballots)

    10 of those bundles are totaled on a different marker sheet and bundled together (10,000 ballots)

    And so on. The idea being that any individual bundle can be quickly verified or re-counted. And because it's all base 10, it is easy for MOST humans to visually verify the bundles themselves. The ones that can count to ten, that is.

  24. Mod parent WAY up! on 'Til Tech Do Us Part · · Score: 3, Insightful
    From TFA:

    Waking up at 5 a.m., while his wife and daughter are still asleep, he pads into the darkened kitchen, logs onto his computer and changes the Netflix order to put his favorite movies on top. He knows the warehouse ships the movies by about 7 a.m., so by the time his wife realizes what he's done, it'll be too late. "It's not grounds for murder, but it is irritating," Ms. De Chellis says.

    Dude, spend an extra $15 a month and get a second NetFlix account.

    If she ends up dying of cancer at least you'll be able to say that you got to watch the movies YOU wanted. What the fuck, people? Get some perspective! Are you that hung up on the trivialities of your life that you can't work around them? Grow up and start acting like an adult.
  25. "LTS" is Long Term Support. on Red Hat to Enter the Desktop Market · · Score: 3, Informative

    It's from Ubuntu.

    You can pay for per-incident support from Canonical. Or you can purchase a support contract from them.

    Either way, it's as good as what Red Hat is offering ... or better. And it's already established. And it's a very popular desktop distribution.